$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft File: aUCPaxygKBZoPM5MCOAEkyUZRLI.mft (raw, json) Hash identifier: mB4LPrxz7lZV9v3ZINbBDbO4kxmiin5OjexRelly0fg= Subject key identifier: CD:C7:DF:1C:A5:50:EB:E9:2B:45:EB:EB:D7:75:4E:15:DF:12:19:0E Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Certificate serial: 0A55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft Manifest number: 0A3F Signing time: Wed 02 Jul 2025 19:59:41 +0000 Manifest this update: Wed 02 Jul 2025 19:59:41 +0000 Manifest next update: Wed 09 Jul 2025 19:59:41 +0000 Files and hashes: 1: aUCPaxygKBZoPM5MCOAEkyUZRLI.crl (hash: nrSiiN119gJC6FV7hweoO1zRa4shV5TlFfGgaMmzc28=) 2: 834C938A12C711F09998A234C4F9AE02.roa (hash: M4mfahqMzwmq58j++0Teybq9n4Aqspe3mvfksixkbgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2645 (0xa55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166FC, serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Validity Not Before: Jul 2 19:59:41 2025 GMT Not After : Jul 9 19:59:41 2025 GMT Subject: CN=68658fad-861a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5a:09:b3:41:e8:ed:79:d9:f4:97:96:6e:31: 7d:b3:c8:34:15:3f:97:8d:0a:9c:05:8a:08:f3:57: 42:ab:e4:65:db:2b:35:73:de:c7:d6:e2:2f:19:93: 1a:46:96:92:7c:66:37:2d:fe:39:0c:77:9b:db:75: 0c:b8:3b:6d:17:17:1d:14:c2:dd:e6:fb:3e:fa:d3: d6:13:e4:11:e3:96:5d:ce:1f:58:63:a4:7d:8a:9b: 54:87:55:68:7c:e6:7b:74:3d:9e:2e:e3:75:84:96: 8a:6b:6c:d3:bd:67:b2:e1:04:cc:d3:da:e7:64:83: fc:9b:5a:2e:48:d3:c9:98:2d:80:db:81:9a:57:ba: 5a:75:af:7f:3c:53:5b:3e:54:b9:1f:e0:04:21:d5: 31:26:be:63:3d:52:2e:87:05:cf:d8:ce:bc:36:57: 70:69:0c:15:03:42:92:28:d0:3f:2b:0d:aa:03:44: a4:cc:50:c8:f1:ac:58:8f:84:24:1d:25:2e:8b:b8: c3:7d:f1:2d:bc:ec:28:3e:1d:dc:0f:02:8f:95:ae: 3a:da:26:44:ea:20:e8:72:66:ac:01:90:a6:fa:0d: 78:42:58:7c:98:02:21:e4:b5:d1:81:7b:cb:d8:bf: a7:ae:19:de:b5:f2:53:45:90:cd:2b:6e:60:21:16: c6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C7:DF:1C:A5:50:EB:E9:2B:45:EB:EB:D7:75:4E:15:DF:12:19:0E X509v3 Authority Key Identifier: keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:3a:dc:f0:2b:36:67:e8:c1:69:17:1c:fc:f5:34:4f:1d:35: 19:87:7c:be:1e:79:5f:83:cb:4c:b5:53:6f:2d:a5:6a:57:d6: 35:72:07:a2:48:65:11:40:1e:2a:78:1e:36:33:72:14:0a:0b: 75:4d:f6:d0:bd:34:f9:77:4d:21:83:ee:3d:13:bb:b5:47:de: 02:0a:bb:78:17:96:22:22:66:ba:00:e2:a0:bf:0f:6f:6f:72: 6e:0c:c1:39:10:9f:f4:de:47:f2:50:51:44:97:16:e7:b4:6d: 59:fa:8a:90:6b:8e:05:24:32:1b:fa:4d:0c:ce:62:c0:33:c1: 8b:35:5e:d1:b1:44:cd:4b:bb:ff:33:5d:30:ac:e6:cf:3c:15: 5e:4f:53:d3:24:99:3d:8a:e0:a6:fc:db:f1:bd:11:6f:17:f3: 40:8c:a8:cc:b1:c4:6c:0c:7e:51:7b:1a:ac:74:5e:78:dc:1b: 66:b0:66:d3:1a:3b:f5:0b:0d:46:07:4a:a2:52:dc:f7:80:88: 40:77:48:c5:d8:da:d6:70:f1:78:35:e7:f4:06:2c:61:f2:76: c4:44:79:97:f0:9e:d6:c5:33:28:0b:3c:f0:53:4d:3d:06:95: 41:9f:84:ec:7a:d9:70:70:cd:fb:ff:4b:b5:dd:0c:9c:0b:be: 06:47:b9:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz MjUxOTQ0QjIwHhcNMjUwNzAyMTk1OTQxWhcNMjUwNzA5MTk1OTQxWjAYMRYwFAYD VQQDEw02ODY1OGZhZC04NjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VoJs0Ho7XnZ9JeWbjF9s8g0FT+XjQqcBYoI81dCq+Rl2ys1c97H1uIvGZMa RpaSfGY3Lf45DHeb23UMuDttFxcdFMLd5vs++tPWE+QR45Zdzh9YY6R9iptUh1Vo fOZ7dD2eLuN1hJaKa2zTvWey4QTM09rnZIP8m1ouSNPJmC2A24GaV7pada9/PFNb PlS5H+AEIdUxJr5jPVIuhwXP2M68NldwaQwVA0KSKNA/Kw2qA0SkzFDI8axYj4Qk HSUui7jDffEtvOwoPh3cDwKPla462iZE6iDocmasAZCm+g14Qlh8mAIh5LXRgXvL 2L+nrhnetfJTRZDNK25gIRbGLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3H3xyl UOvpK0Xr69d1ThXfEhkOMB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZGQy9BQjFGNEVDQTcyOUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tC Wm9QTTVNQ09BRWt5VVpSTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0OtzwKzZn6MFpFxz89TRPHTUZh3y+Hnlfg8tMtVNvLaVqV9Y1cgei SGURQB4qeB42M3IUCgt1TfbQvTT5d00hg+49E7u1R94CCrt4F5YiIma6AOKgvw9v b3JuDME5EJ/03kfyUFFElxbntG1Z+oqQa44FJDIb+k0MzmLAM8GLNV7RsUTNS7v/ M10wrObPPBVeT1PTJJk9iuCm/NvxvRFvF/NAjKjMscRsDH5RexqsdF543BtmsGbT Gjv1Cw1GB0qiUtz3gIhAd0jF2NrWcPF4Nef0Bixh8nbERHmX8J7WxTMoCzzwU009 BpVBn4TsetlwcM37/0u13QycC74GR7lZ -----END CERTIFICATE-----Generated at Fri Jul 4 14:10:21 2025 by rpki-client